How to destoy session

[prashcom]

I am using phpfreechat 1.0-beta10 ,trying to integrate this system with phpbb forums. I used this http://www.phpfreechat.net/faq.en.html#phpbb thread to configure the setting and its working fine (showing the nickname)...

but suppose if once i login with abc and again if i will try to login with xyz then its showing me the previous conversation of abc too. This means its treating new user as abc not as different user xyz, because its setting session and if once its getting the session its treating the user as previous one.

Is it possible to destroy the session completely before any new login? And how to use phpbb session instead of phpfreechat session?

Is i need to do something in pfcuserconfig.php:

$c =& pfcGlobalConfig::Instance();

// start the session : session is used for locking purpose and cache purpose

session_name("phpfreechat"); //$c->nick

if(session_id() == "") session_start();

$this->nickid = session_id();

or i need to change in pfcglobalconfig?

Please help me out!!!

[phpfreechat]

try to add this parameter :
$params['frozen_nick'] = true;
it will force the nickname to be changed if $params['nick'] is dynamicaly changed.

[prashcom]

I did it but no luck!!!

Suppose when abc was logged in and chatted with someone including few private chat and then if xyz logged in then the private chat box of abc is stillshowing??

Logically that should not be shown!

This is my code

$params = array();
$params["serverid"] = md5("Community Chat Room");
$params["title"] = "Community Chat Room";
//$params["nick"] = isset($UserDetailsInArray['username'])?$UserDetailsInArray['username']:'';
$params["nick"] = iconv("windows-1251", "UTF-8", $userdata[username]);
$params["channels"] = array("Community Chat Room");

$chat = new phpFreeChat( $params );

and also in globalconfig file

var $frozen_nick = true;

Once i am changing my nickname i am getting msg "You are not allowed to change your nickname" but once i am clicking on msg box then that msg disappear!!

I think this time i will get better solution

[morcth]

frozen_nick works with this if the browser window is closed but if you just log out of the chat and then login with a new user name without restarting the browser then it will log you in as the old user and not the new one. I need this as well. I need to destroy the session or clear cache whatever before each new login. Is this possible? In my opinion this is a security risk because if more than one user uses the same computer for my site and someone forgets to close the browser when they leave my site, then the second person can chat under the first users name.

[prashcom]

I think the problem is with Session. If once we can specify session timeout then i think the problem may solve?? i deadly need help to destroy my session everytime when user will logged in. I think this is the biggest drawback of phpchat system...

I worked almost full day with the code but not finding the solution...

[phpfreechat]

Maybe put this simple code in your forum login page :

Code: Select all

$oldsessionname = session_name();
session_name( 'phpfreechat' );
if(session_id() != '') session_destroy();
session_name( $oldsessionname  );

[morcth]

I am using phpfreechat integrated with a joomla site that is installed on my local system. I pasted that code into where the login is processed into joomla. I did not get an error or anything but it did not change the outcome. I need the login to PFC to not check any past usernames in cache or sessions each time someone logs in. Any more ideas? Thanks.

Josh

[phpfreechat]

Sorry my above code is wrong, try this one :

Code: Select all

$oldsessionname = session_name();
session_name( 'phpfreechat' );
session_start();
session_destroy();
session_name( $oldsessionname  );

[morcth]

This should go in my Joomla login function or in my pfc login function or mychat.php?

[prashcom]

Thanks kerphi i think this code will help me in pfc login.

And Morcth this code is for pfc login.

Morcth will you pls explain in details, so that i will help you out!!

[morcth]

Sure because I dont think this worked for me. I have a joomla site and I integrated PFC into it and it works nicely. If I log into Joomla as administrator and then click the chat link on the menu, a new window opens and PFC logs me in as administrator. Then I will close the chat window, log out of joomla and log back in as demo. If i click the chat link, PFC opens up and I am still administrator. If i close the chat and the joomla window and then start it back up and log in again then everything is fine but I need it to work without closing the joomla window... it could be a security issue. So I need PFC to not look at the session or cache for info on any login. Thanks for any help.

Josh

[King Moonraiser]

Sorry my above code is wrong, try this one :

Code: Select all

$oldsessionname = session_name();
session_name( 'phpfreechat' );
session_start();
session_destroy();
session_name( $oldsessionname  );

At what point does this code get added? Before or after the "$chat = new phpFreeChat( $params );"?

[phpfreechat]

This code is used to clear the phpfreechat session (logout).
So you can use this code in your external authentification system in order to disconnect phpfreechat when you disconnect from your authentification system.